[Git][security-tracker-team/security-tracker][master] Revert "Track CVE-2015-9019 is fixed in libxslt/1.1.32-1"
Aron Xu (@aron)
aron at debian.org
Mon Aug 18 07:51:06 BST 2025
Aron Xu pushed to branch master at Debian Security Tracker / security-tracker
Commits:
274633c1 by Aron Xu at 2025-08-18T14:50:52+08:00
Revert "Track CVE-2015-9019 is fixed in libxslt/1.1.32-1"
This reverts commit 99f5688d5584e5c7f619d291724d59bf94768cdb.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -615651,7 +615651,7 @@ CVE-2017-0887 (Nextcloud Server before 9.0.55 and 10.0.2 suffers from a bypass i
CVE-2016-7443 (Exponent CMS 2.3.0 through 2.3.9 allows remote attackers to have unspe ...)
NOT-FOR-US: Exponent CMS
CVE-2015-9019 (In libxslt 1.1.29 and earlier, the EXSLT math.random function was not ...)
- - libxslt 1.1.32-1 (unimportant; bug #859796)
+ - libxslt <unfixed> (unimportant; bug #859796)
NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=758400
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=934119
NOTE: There's no indication that math.random() in intended to ensure cryptographic
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/274633c1028b1f4b1c850637b2efed41107bc983
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/274633c1028b1f4b1c850637b2efed41107bc983
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250818/56cde029/attachment.htm>
More information about the debian-security-tracker-commits
mailing list